I have to NAT ports 5060 & 10000-12000 in UDP to 192.168.0.5 but limiting the access only to special network 100.xx.xx.0/22, that is the network of my VOIP supplier (to prevent somebody steal my VOIP credit....)

I have add FIREWALL NAT for both WAN 1 and WAN 2 indicating SOURCE as 100...0/22
In FIREWALL Rules I have changed the GW from DEFAULT to GW_GROUP that is the load balance.

Asterisk perfectly REGISTER with VOIP and I can call out.
But I can't receive any call ! The caller hear fast busy signal (as no connection).

No point I say that, if I switch off the PFSENSE, switch on M0n0, everything is working perfectly.
I checked the configuration between M0n0 and PFSense in FIREWALL NAT/RULES and they look the same, apart the gateway that in PFSENSE is setup as GW_Group (Load Balance).

If I use the default GW (not the GW_group), I mean I leave both rules in FIREWALL using the GW of their WAN, everything is working well.

Where did I mistake ?

Thanks again

Paolo

]]>https://forum.netgate.com/topic/74234/load-balance-ok-but-voip-problemRSS for NodeSun, 15 Sep 2019 10:46:14 GMTWed, 01 Oct 2014 21:06:14 GMT60First of all, thanks in advance for the time you're spending to read this my first post.

I have to NAT ports 5060 & 10000-12000 in UDP to 192.168.0.5 but limiting the access only to special network 100.xx.xx.0/22, that is the network of my VOIP supplier (to prevent somebody steal my VOIP credit....)

I have add FIREWALL NAT for both WAN 1 and WAN 2 indicating SOURCE as 100...0/22
In FIREWALL Rules I have changed the GW from DEFAULT to GW_GROUP that is the load balance.

Asterisk perfectly REGISTER with VOIP and I can call out.
But I can't receive any call ! The caller hear fast busy signal (as no connection).

No point I say that, if I switch off the PFSENSE, switch on M0n0, everything is working perfectly.
I checked the configuration between M0n0 and PFSense in FIREWALL NAT/RULES and they look the same, apart the gateway that in PFSENSE is setup as GW_Group (Load Balance).

If I use the default GW (not the GW_group), I mean I leave both rules in FIREWALL using the GW of their WAN, everything is working well.